Risky Business Risky Business #791 -- Woof! Copilot for Sharepoint coughs up creds and keys
39 snips
May 14, 2025 This week features Travis McPeak, Founder and CEO of Resourcely, who specializes in cloud security and Terraform management. They delve into the intriguing role of AI in SharePoint, revealing how Copilot could unintentionally leak sensitive data. The discussion also unpacks the evolving ransomware landscape, including shifts in group dynamics and the implications of recent high-profile attacks. Additionally, they highlight innovative research on vehicle hacking using Bluetooth vulnerabilities and emphasize the need for coordinated cloud security efforts, showcasing Resourcely's mission to streamline Terraform management.
AI Snips
Chapters
Transcript
Episode notes
SharePoint AI Copilot Flaw
- Microsoft SharePoint's AI Copilot can be exploited to find sensitive documents and secrets without detection.
- This flaw essentially helps attackers search SharePoint content stealthily, bypassing access logs.
Asus Driver Software RCE Bug
- A researcher discovered Asus driver installation software allowed remote code execution via domain name spoofing.
- Despite finding severe bugs, Asus did not respond and the Wi-Fi issue remained unresolved.
Lockbit's Decline Evident
- The ransomware group Lockbit appears to have been hacked and defaced, signaling decline.
- This shows that the ransomware ecosystem is fracturing under pressure from law enforcement and infighting.